๐ช๐ธ
masterguru
2026-07-19 00:40:01
(14 hours ago)
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-122)
show less
Bad Web Bot
๐ฌ๐ง
consul.to
2026-07-18 16:16:24
(23 hours ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 21:20:28
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 141.11.36.56 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 141.11.36.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 17:20:24.252181 2026] [security2:error] [pid 13864:tid 13864] [client 141.11.36.56:59275] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.clcmillvale.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.clcmillvale.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ak1tmHJxad0yosAo2_XPggAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-07-07 01:26:33
(1 week ago)
5.000 requests with url.path */xmlrpc.php
5.000 requests with url.path //xmlrpc.php
Brute-Force
Bad Web Bot
๐ฑ๐น
NotACaptcha
2026-07-06 22:01:20
(1 week ago)
webserver:443 [07/Jul/2026] "GET //cms/wp-includes/wlwmanifest.xml HTTP/1.1" 404 470 "-" "Mozilla/5 ...
show more
webserver:443 [07/Jul/2026] "GET //cms/wp-includes/wlwmanifest.xml HTTP/1.1" 404 470 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
webserver:443 [07/Jul/2026] "GET //site/wp-includes/wlwmanifest.xml HTTP/1.1" 404 470 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
webserver:443 [07/Jul/2026] "GET //test/wp-includes/wlwmanifest.xml HTTP/1.1" 401 724 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
webserver:443 [07/Jul/2026] "GET //wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 404 470 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
webserver:443 [07/Jul/2026] "GET //shop/wp-includes/wlwmanifest.xml HTTP/1.1" 404 470 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Geck...
show less
Web App Attack
๐จ๐ฆ
Dolphi
2026-07-06 22:00:03
(1 week ago)
POST //xmlrpc.php
Brute-Force
Web App Attack
๐จ๐ญ
Origon
2026-07-03 18:06:28
(2 weeks ago)
http-backdoors-attempts - IP: 141.11.36.56 - time="2026-07-03T20:06:27+02:00" level=info msg="(555f ...
show more
http-backdoors-attempts - IP: 141.11.36.56 - time="2026-07-03T20:06:27+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-backdoors-attempts by ip 141.11.36.56 (IT/137409) : 4h ban on Ip 141.11.36.56" module=db
show less
Web App Attack
๐ซ๐ท
Octopuce
2026-07-03 06:12:34
(2 weeks ago)
Aggressive web search of vulnerable pages: /wp-content/themes/index.php /wp-content/themes/builder-a ...
show more
Aggressive web search of vulnerable pages: /wp-content/themes/index.php /wp-content/themes/builder-and-developer/inc/tgm/error.php /wp-content/ ...
show less
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-16 05:14:47
(1 month ago)
Excessive 404/403 errors
Brute-Force
๐ฌ๐ง
consul.to
2026-06-09 00:42:20
(1 month ago)
Web attack/malicious scanning detected
Web App Attack
๐ฉ๐ช
Nevermind
2026-06-07 20:18:23
(1 month ago)
141.11.36.56 - - [07/Jun/2026:22:18:21 +0200] "GET /wp-content/themes/twentytwentytwo/assets/index.p ...
show more
141.11.36.56 - - [07/Jun/2026:22:18:21 +0200] "GET /wp-content/themes/twentytwentytwo/assets/index.php HTTP/2.0" 404 146 "http://superdau.it/wp-content/themes/twentytwentytwo/assets/index.php" "Go-http-client/2.0"
141.11.36.56 - - [07/Jun/2026:22:18:22 +0200] "GET /wp-includes/assets/certificates/index.php HTTP/2.0" 404 146 "http://superdau.it/wp-includes/assets/certificates/index.php" "Go-http-client/2.0"
141.11.36.56 - - [07/Jun/2026:22:18:22 +0200] "GET /wp-content/themes/alera/gecko.php HTTP/2.0" 404 146 "http://superdau.it/wp-content/themes/alera/gecko.php" "Go-http-client/2.0"
141.11.36.56 - - [07/Jun/2026:22:18:22 +0200] "GET /wp-content/yosxb.php HTTP/2.0" 404 146 "http://superdau.it/wp-content/yosxb.php" "Go-http-client/2.0"
...
show less
Web App Attack
๐ฌ๐ง
poundawebsiteltd
2026-06-03 12:02:53
(1 month ago)
Apache 403 Forbidden Access. Evidence: [REDACTED_DOMAIN]:80 141.11.36.56 - - [03/Jun/2026:13:02:51 + ...
show more
Apache 403 Forbidden Access. Evidence: [REDACTED_DOMAIN]:80 141.11.36.56 - - [03/Jun/2026:13:02:51 +0100] GET /autoload_classmap.php HTTP/1.1 403 158 - Go-http-client/1.1
show less
Web App Attack
๐ณ๐ฑ
Site.eu
2026-05-25 23:31:59
(1 month ago)
Excessive multi-domain requests
Brute-Force
๐ฉ๐ช
Vegascosmetics
2026-05-24 21:51:00
(1 month ago)
Kingcopy(AI-IDS):IP is Probing for Wordpress vulnerabilities WTF:Banned
Hacking
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Roderic
2026-05-24 00:18:57
(1 month ago)
(mod_security) mod_security triggered on hostname [redacted])
SQL Injection